Christian Lewe
Christian Lewe
In the short factoring proof, there is the line $y = r + (N - \varphi(N))e$. In the vanilla protocol, the verifier checks $x \overset{?}{\equiv} z^{y - eN} \mod N$....
To prove knowledge soundness of the Bulletproofs inner product argument, I think you need four transcripts per step: Three transcripts are used to compute the vectors `a`, `a_L`, etc. Then,...
Bootle's protocol divides the lengths of vectors in each step, until the length is one. Any decomposition works, but we want to send as few elements as possible. In other...
These are small errors / oddities that I noticed while going through the document. Great work, by the way.
The tech report and wiki include the following jets (in front of arrow), but the code base renamed them (after arrow). - tap-leaf-hash → tapleaf-hash - tapbranch → tappath -...
The current C code cannot be compiled for WASM, which prevents Simplicity to be run in the browser. rust-simplicity depends on C FFI, so it has the same problem. For...
https://github.com/BlockstreamResearch/simplicity/blob/5e7976326156ac9db9b5f8695dd597e8e370e130/C/deserialize.c#L46 It is unclear what illegal children are. Non-case nodes may not have hidden children, so these children are illegal. However, a case node may not have two hidden children,...
I found a program that seems to exceed the expected runtime given its cost. The program is constructed as follows: ``` f(0) := iden f(n + 1) := comp (take...
It would help with review and reduce potential human error to autogenerate [how the C code decodes jets](https://github.com/BlockstreamResearch/simplicity/blob/7a6ba113dff8d77e65a5f35d2ac613e219633125/C/primitive/elements/primitive.c#L70).
Fix jets
Fix two things to make jets more usable.